MDKSA-2004:091

Problem description

Max Vozeler found that the cdrecord program, which is suid root, fails
to drop euid=0 when it exec()s a program specified by the user through
the $RSH environment variable. This can be abused by a local attacker
to obtain root privileges.
The updated packages are patched to fix the vulnerability.